b9e376707ef802df972938dcfa54a36ebd7377209d26491727ba807893aa4504 | Triage

Submit
Reports

Overview

overview

9

Static

static

1

b9e376707e...04.elf

debian-9-armhf

9

Analysis

max time network
151s
platform
debian-9_armhf
resource
debian9-armhf-20240418-en
resource tags

arch:armhfimage:debian9-armhf-20240418-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
22-05-2024 02:12

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

b9e376707ef802df972938dcfa54a36ebd7377209d26491727ba807893aa4504.elf

Resource

debian9-armhf-20240418-en

debian-9-armhf

2 signatures

150 seconds

Report Analysis Logs

General

Target

b9e376707ef802df972938dcfa54a36ebd7377209d26491727ba807893aa4504.elf
Size

50KB
MD5

51780cdab2e494c00b176ac4e7247990
SHA1

5a8425d265a40e7199bad1a9869c6840d24442d0
SHA256

b9e376707ef802df972938dcfa54a36ebd7377209d26491727ba807893aa4504
SHA512

4b1dd90b8a26af7ff489ba9083267790db00d71084ec7472b0cbe0ea4aad9592571f58cbc938b6e387813e7300fe06b9619232e9f69405e79b0296b603603be1
SSDEEP

768:CYy85E1c6D46wToxNf7vZwMCcxTqUrmdGwoauSi8NLoMM8ZO83UlqWd5DN:PJs4pAvZ3CbUWoari8NL713Ulhx

Score

9^/10

discovery

Malware Config

Signatures

Contacts a large (77262) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
discovery

Network Service Discovery
T1046

Processes

Network

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy